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DETAILED ACTION 

This office action is in reply to an amendment filed on March 24, 2009. Claims 1-38 are 
pending. 

Response to Arguments 

Applicant's arguments filed on 03/24/2009 have been fully considered but they are not 
persuasive. Applicant argues that, the art on record fails to teach "encryption parameters that 
comprise: ... an encryption key string comprising a second set that defines a policy for allowing 
the output of the first data set onto a said removable storage medium" Examiner disagrees. 

Examiner would point out that, Peinado US 2002/0013772 teaches a first computing 
entity arranged to encrypt a first data set (i.e., content), the encrypting done by the first 
computing entity being based on encryption parameters comprising public data of a trusted 
party (i.e., PU-BB-PD) and an encryption key string (i.e., content key, KD) comprising a second 
data set that defines a policy for allowing the output of the first data set onto a said removable 
storage medium (i.e., license/sub-license' Note that, the content key is re-encrypted and tied to 
the license (policy) , see paragraphs 0278, 0284-0292). Examiner would further point out that 
the art on record teaches the claim limitations and therefore, the rejection is respectfully 
maintained. 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
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the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

Claims 1-4, 11-18, 25-28, 30, 31 and 35-38 rejected under 35 U.S.C. 103(a) as being 

unpatentable over Peinado US 2002/0013772 A1 in view of Lampson et al. US 2003/0196099 

A1 (hereinafter Lampson). 

As per claims 1 and 11-13, Peinado teaches a system comprising: 
an output device for outputting data onto a removable storage medium (i.e., figure 13, 
portable device) ; 

a first computing entity arranged to encrypt a first data set (i.e., content), the encrypting 
done by the first computing entity being based on encryption parameters comprising public data 
of a trusted party (i.e., PU-BB-PD) and an encryption key string (i.e., content key, KD) 
comprising a second data set that defines a policy for allowing the output of the first data set 
onto a said removable storage medium (i.e., license/sub-license), the first computing entity 
being further arranged to output the encrypted first data set for the output device (i.e., content 
being encrypted according to content key, content key being encrypted according to PU-BB- 
PD/black box public key, and delivering the encrypted content and sub-license to the portable 
device, see paragraphs 0278, 0284-0292); and 

a second computing entity associated with the trusted party and arranged when satisfied 
that said policy has been met, to output for the output device a decryption key, for use in 
decrypting the encrypted first data set, the second computing entity being arranged to generate 
this decryption key in dependence on the encryption key string and private data related to said 
public data (i.e., the portable device/black box decrypting the content key by using private key, 
PR-BB-PD, that is related to the public key, see paragraphs 0278, 0284-0292); 
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the output device being arranged to use the decryption key in decrypting the encrypted 
first data set (i.e., the portable device using the content key and decrypting the content, see 
paragraphs 0278, 0284-0292). Peinado is silent on the encryption key being distinct from the 
decryption key. However, it is well known to have an encryption key that is distinct from a 
decryption key for enhancing security of the system. For example, Lampson teaches an 
encryption/decryption system, including an encryption key that is distinct from a decryption key 
[see at least the abstract]. It would have been obvious to one having ordinary skill in the art at 
the time of applicant's invention to employ the teachings of Lampson within the system of 
Peinado in order to enhance the security of the system. 

As per claims 15, 25 and 26, Peinado teaches a data output method comprising the 
steps of: 

(a) encrypting a first data set the encrypting done by the first computing entity being 
based on encryption parameters comprising public data of a trusted party (i.e., PU-BB-PD) and 
an encryption key string (i.e., content key) comprising a second data set that defines a policy 
(i.e., license/sub-license) for allowing the output of the first data set to a removable storage 
medium (i.e., content being encrypted according to content key, content key being encrypted 
according to PU-BB-PD/black box public key, and delivering the encrypted content and sub- 
license to the portable device, see paragraphs 0278, 0284-0292), 

(b) providing the encrypted first data set to an output device adapted to output data to a 
removable storage medium (i.e., delivering the encrypted content and sub-license to the 
portable device, see paragraphs 0278, 0284-0292); 

(c) at the trusted party (portable device black box) checking that said policy has been 
satisfied and thereafter providing the output device with a decryption key, for use in decrypting 
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the encrypted first data set, this decryption key being generated in dependence on the 
encryption key string and private data related to said public data (i.e., the portable device/black 
box decrypting the content key by using private key, PR-BB-PD, that is related to the public key, 
see paragraphs 0278, 0284-0292); and 

(d) at the output device using the decryption key in decrypting the encrypted first data 
set and outputting the first data set to a removable recording medium (i.e., the portable device 
using the content key and decrypting the content, see paragraphs 0278, 0284-0292). 

Peinado is silent on the encryption key being distinct from the decryption key. However, 
it is well known to have an encryption key that is distinct from a decryption key for enhancing 
security of the system. For example, Lampson teaches an encryption/decryption system, 
including an encryption key that is distinct from a decryption key [see at least the abstract]. It 
would have been obvious to one having ordinary skill in the art at the time of applicant's 
invention to employ the teachings of Lampson within the system of Peinado in order to enhance 
the security of the system. 

As per claims 28, 30, 31 and 35-37, Peinado teaches a printing system comprising: 
a printer [paragraphs 036, 0099, 0267]; 

a first computing entity arranged to encrypt a first data set (i.e., content) the encrypting 
done by the first computing entity being based on encryption parameters comprising public data 
of a trusted party (i.e., PU-BB-PD) and an encryption key string (i.e., content key, KD) 
comprising a second data set that defines a policy for allowing the output/printing of the first 
data set onto a said removable storage medium (i.e., license/sub-license), the first computing 
entity being further arranged to output the encrypted first data set for the output device/printing 
device (i.e., content being encrypted according to content key, content key being encrypted 
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according to PU-BB-PD/black box public key, and delivering the encrypted content and sub- 
license to the portable device, see paragraphs 0278, 0284-0292); and 

a second computing entity associated with the trusted party and arranged when satisfied 
that said policy has been met, to output for the output device a decryption key, for use in 
decrypting the encrypted first data set, the second computing entity being arranged to generate 
this decryption key in dependence on the encryption key string and private data related to said 
public data (i.e., the portable device/black box decrypting the content key by using private key, 
PR-BB-PD, that is related to the public key, see paragraphs, 0278, 0284-0292); 

the output device/printer being arranged to use the decryption key in decrypting the 
encrypted first data set (i.e., the portable device using the content key and decrypting the 
content, see paragraphs 0278, 0284-0292). 

Peinado is silent on the encryption key being distinct from the decryption key. However, 
it is well known to have an encryption key that is distinct from a decryption key for enhancing 
security of the system. For example, Lampson teaches an encryption/decryption system, 
including an encryption key that is distinct from a decryption key [see at least the abstract]. It 
would have been obvious to one having ordinary skill in the art at the time of applicant's 
invention to employ the teachings of Lampson within the system of Peinado in order to enhance 
the security of the system. 

As per claims 2 and 1 6, Peinado further teaches the system wherein the second 
computing entity is arranged to generate the decryption key only when said policy has been met 
[see paragraphs, 0278, 0284-0292]. 
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As per claims 3 and 1 7, Peinado further teaches the system wherein the second 
computing entity is arranged to issue to the first computing entity at least one of: the second 
data set, the encryption key string, a derivative of the encryption key string usable by the first 
computing entity, in place of the encryption key string, in the encryption of said first data set 
[paragraphs 0278, 0284-0292]. 

As per claims 4 and 1 8, Peinado further teaches the system wherein the second 
computing entity is arranged to receive the encryption key string directly or indirectly from the 
first computing entity [paragraphs 0278, 0284-0292]. 

As per claims 14, 27 and 38, Peinado further teaches the system further comprising a 
portable device comprising the second computing entity and a first communications interface, 
the output device comprising a second communications interface arranged to cooperate with the 
first communications interface to enable communication between the second computing entity 
and the output device, the communications interfaces being such that the portable device must 
be present at the output device for the communication between the second computing entity to 
take place [see figure 13]. 

Allowable Subject Matter 

Claims 5-10, 19-24, 29 and 32-34 objected to as being dependent upon a rejected base 
claim, but would be allowable if rewritten in independent form including all of the limitations of 
the base claim and any intervening claims. 



Conclusion 
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THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time policy as 
set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the mailing date 
of this final action. 

Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to BEEMNET W. DADA whose telephone number is (571 )272-3847. The 
examiner can normally be reached on Monday - Friday (9:00 am - 5:30 pm). 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Y. Vu can be reached on (571 ) 272-3859. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private 
PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you 
would like assistance from a USPTO Customer Service Representative or access to the 
automated information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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